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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1. (currently amended) A system with a local application entity and communications 
means by which the local application entity can communicate with peer remote 
application entities on other systems, the communication means including a transport 
entity for providing transport services, and a transport-independent, session-level 
security entity logically positioned above the transport entity and visible to the local 
application entity, the security entity being operative to set up secure communication 
sessions with peer security entities in other systems and comprising: 

key-exchange handshake means for conducting a handshake with a said peer 
security entity associated with a particular remote application entity with which said 
local application entity wishes to communicate, this handshake involving the exchange 
of key-related data for use in generating session keys; and 

secure channel means for enabling messages to be passed between the local 
application entity and said particular remote application entity with authentication 
and /or encryption of these messages being effected using the session keys generated 
from said key-related data whereby to secure these messages in passage between the 
cooperating security entities; 

the handshake means including: 

first means, operative in the course of said handshake, to pass to said peer 
security entity a first indication in the form of explicit information about what 
indicating the services are required by the local application entity, to receive back from 
said peer security entity a second indication explicitly advising what specific indicating 
the attributes are required of the local application entity by the remote application 
entity for carrying out said services, to select on the basis of said second indication and 
to pass first attribute justifications in the form of one or more certificates from a set of 
available attribute justifications, and to pass the selected first attribute justifications to 
said peer security entity, and 
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second means, operative in the course of said handshake, to pass to said peer 
security entity a third indication explicitly advising what specific indicating: the 
attributes are required of the remote application entity by the local application entity, 
and to receive second attribute justifications, in the form of one or more certificates, 
from said peer security entity. 

2. (original) A system according to claim 1, wherein the security entity is capable of 
establishing multiple concurrent security sessions with another system over a common 
transport connection set up by the transport entity. 

3. (canceled) 

4. (currently amended) A system according to claim 1, further comprising attribute 
justification means for proving from certificates received from form the remote system 
during said handshake that the remote application has the required attributes. 

5. (original) A system according to claim 1, wherein said local application entity is a 
mediation entity acting on behalf of one or more other application entities. 

6. (canceled) 

7. (original) A system according to claim 1, wherein the security entity formats its 
communications intended for the remote peer security entity in protocol data units 
(PDUs) that each include: 

a session indicator enabling the peer security entity to determine to which 
security session the PDU relates; and 

a message-type field by which the peer security entity can determine whether the 
PDU carries handshake-related data or a message being passed over the secure channel 
of the security session indicated by said session indicator. 

8. (currently amended) wherein A system according to claim 1, wherein said handshake 
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is a three message handshake, the first message passing from the local security entity to 
said peer security entity and including said first and third indications, the second 
message passing from the peer security entity to the local security entity and including 
said second indication and said second attribute justifications, and the third message 
passing from the local security entity to said peer security entity and including said first 
attribute justifications. 

9. (previously presented) A system according to claim 1, wherein in the course of said 
handshake an authenticated ephemeral key exchange is effected, and a cipher suite is 
negotiated determining the authentication and /or encryption algorithms that will be 
subsequently used by the secure channel means for the security session concerned. 

10. (previously presented) A system according to claim 9, wherein said authenticated 
ephemeral key exchange is a Diffie-Hellman key exchange. 

11. (previously presented) A system according to claim 8, wherein in the course of said 
handshake an authenticated ephemeral key exchange is effected, and a cipher suite is 
negotiated determining the authentication and /or encryption algorithms that will be 
subsequently used by the secure channel means for the security session concerned. 

12. (previously presented) A system according to claim 11, wherein said authenticated 
ephemeral key exchange is a Diffie-Hellman key exchange. 

13. (currently amended) A method of initiating secure communication between a local 
and a remote system wherein a security protocol handshake is effected between 
respective transport-independent, session-level security entities of the local and remote 
systems during which handshake key-related data is exchanged for use in generating 
session keys, the handshake further involving 

passing from the local security entity to the remote security entity a first 
indication in the form of explicit information about what indicating the services are 
required by the local system, passing from the remote security entity to the local 
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security entity a second indication explicitly advising what specific indicating tho 
attributes are required of the local system by the remote system for carrying out said 
services, 

selecting on the basis of said second indication first attribute justifications from a 
set of available attribute justifications and passing from the local security entity to the 
remote security entity 7 the selected first attribute justifications in the form of one or 
more certificates, and 

passing from the local security entity to the remote security entity a third 
indication explicitly advising what specific indicating tho attributes are required of the 
remote system by the local system, and passing from the remote security entity to the 
local security entity second attribute justifications, in the form of one or more 
certificates. 

14. (previously presented) A method according to claim 13, wherein said handshake is a 
three message handshake, the first message passing from the local security entity to said 
remote security entity and including said first and third indications, the second message 
passing from the remote security entity to the local security entity and including said 
second indication and said second attribute justifications, and the third message passing 
from the local security entity to said third security entity and including said first 
attribute justifications. 

15. (previously presented) A method according to claim 13, wherein in the course of 
said handshake an authenticated ephemeral key exchange is effected, and a cipher suite 
is negotiated determining the authentication and/or encryption algorithms to be 
subsequently used for secure communication between the local and remote systems. 

16. (previously presented) A method according to claim 15, wherein said authenticated 
ephemeral key exchange is a Diffie-Hellman key exchange. 

17. (previously presented) A method according to claim 14, wherein in the course of 
said handshake an authenticated ephemeral key exchange is effected, and a cipher suite 
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is negotiated determining the authentication and/or encryption algorithms to be 
subsequently used for secure communication between the local and remote systems. 

18. (previously presented) A method according to claim 17, wherein said authenticated 
ephemeral key exchange is a Diffie-Hellman key exchange. 

19. (previously presented) A method according to claim 13, wherein each security entity 
formats its communications intended for the remote peer security entity in protocol 
data units (PDUs) that each include: 

a session indicator enabling the peer security entity to determine to which 
security session the PDU relates; and 

a message-type field by which the peer security entity can determine whether the 
PDU carries handshake-related data or a message being passed over the secure channel 
of the security session indicated by said session indicator. 

20. (currently amended) A method of initiating secure communication between a local 
and a remote system wherein a security protocol handshake is effected between 
respective transport-independent, session-level security entities of the local and remote 
systems during which handshake key-related data is exchanged for use in generating 
session keys, the handshake further involving: 

the local security entity explicitly indicating to the remote security entity the 
services and specific attributes required of said remote system by the local system, 

the remote security entity explicitly indicating to the local security entity the 
specific attributes that the remote system requires of the local system in respect of said 
services, and 

the exchange of attribute justifications, in the form of certificates, between the 
security entities , wherein the attribute justifications passed from the local security entity 
to the remote security entity are chosen from a set of available attributes justifications, 
on the basis of the explicit indication of the specific attributes that the remote system 
requires of the local system . 
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21. (previously presented) A method according to claim 20, wherein said handshake is a 
three message handshake, comprising: 

a first message passing from the local security entity to said remote security 
entity and indicating the services and attributes required of said remote system by the 
local system, 

a second message passing from the remote security entity to the local security 
entity and indicating the attributes that the remote system requires of the local system 
in respect of said services, the second message also including attribute justifications 
provided by the remote system, and 

a third message passing from the local security entity to said third security entity 
and including attribute justifications provided by the local system. 

22. (previously presented) A system for initiating secure communication between a 
local and a remote system, comprising: 

session-level security entities of the local and remote systems that are transport- 
independent from each other; and 

handshake means for effecting a security protocol handshake between respective 
transport-independent, session-level security entities of the local and remote systems 
during which handshake key-related data is exchanged for use in generating session 
keys, the handshake comprising the steps of: 

(a) the local security entity explicitly indicating to the remote security entity the 
services and specific attributes required of said remote system by the local system, 

(b) the remote security entit y explicitly indicating to the local security entity the 
specific attributes that the remote system requires of the local system in respect of said 
services, and 

(c) the exchange of attribute justifications, in the form of certificates, between the 
security entities , wherein the attribute justifications passed from the local security entity 
to the remote security entity are chosen from a set of available attributes justifications, 
on the basis of the explicit indication of the specific attributes that the remote system 
requires of the local system . 



